SSL Certificate Analysis for bitexcoinx.com - Security Grade & TLS Configuration

Open Cached · just now

76/100 SECURITY SCORE

Detected Technologies

See all in URL Inspect 1

Let's Encrypt Active incidents

Certificate Information

Subject

CN=hhpanda.sh

Issuer

C=US, O=Let's Encrypt, CN=R13

Valid From

May 11, 2026

Valid Until

August 09, 2026 88 days

Public Key

RSA 4096 bit Strong

Signature Algorithm

SHA256-RSA

SHA-256 Fingerprint

FF:BE:7F:85:43:2F:71:82:E9:6D:A3:D2:BB:41:50:94:C5:78:E3:12:1A:E6:77:8D:87:64:1C:79:FB:C6:42:2F

Alternative Names

88 domains

Security Configuration

TLS Protocols

TLS 1.2 TLS 1.3

Forward Secrecy

Supported (Modern clients use PFS)

HTTP Security Headers

Status

Strict-Transport-Security

Missing

Not configured

Content-Security-Policy

Missing

Not configured Analyze

Content-Security-Policy-Report-Only

Missing

Not configured Analyze

X-Frame-Options

Missing

Not configured

X-Content-Type-Options

Missing

Not configured

Referrer-Policy

Missing

Not configured

Permissions-Policy

Missing

Not configured

Recommendations

• Add Strict-Transport-Security header with max-age of at least 1 year
• Add Content-Security-Policy header to prevent XSS attacks
• Add X-Frame-Options: DENY or SAMEORIGIN to prevent clickjacking
• Add X-Content-Type-Options: nosniff
• Add Referrer-Policy header (recommended: strict-origin-when-cross-origin)
• Consider adding Permissions-Policy to control browser features

CAA Records (Certificate Authority Authorization)

CAA Records

Not Configured (Any CA can issue certificates)

CAA Issues

• No CAA records configured - any CA can issue certificates

Recommendations

• Implement CAA records to restrict which CAs can issue certificates for your domain
• This adds an extra layer of security against unauthorized certificate issuance
• Example: Add CAA record 'example.com. CAA 0 issue "letsencrypt.org"'
• Consider adding 'iodef' record to receive security incident reports

Subject Alternative Names

88 domains

bitexcoinx.com *.bitexcoinx.com *.dev.bitexcoinx.com *.ww1.bitexcoinx.com *.ww38.bitexcoinx.com *.ww7.bitexcoinx.com

Other domains in certificate

37638.co *.37638.co

83775.co *.83775.co

85077.co *.85077.co

85082.co *.85082.co

85494.co *.85494.co

85942.co *.85942.co

8ballgame.fun *.8ballgame.fun

beaconholiday.live *.beaconholiday.live

bentley777.bet *.bentley777.bet

*.be.creamy.pro creamy.pro *.creamy.pro *.huzeyfe.creamy.pro *.staging.creamy.pro *.test.creamy.pro *.ww38.creamy.pro

ebevun.com *.ebevun.com

gincci.shop *.gincci.shop *.ww38.gincci.shop

gizmotechsolutions.shop *.gizmotechsolutions.shop *.ww38.gizmotechsolutions.shop

harbinger.health *.harbinger.health

hhpanda.sh *.hhpanda.sh

hhutm5j9.top *.hhutm5j9.top

innateresources.com *.innateresources.com

iraqiachat.xyz *.iraqiachat.xyz

luar.bet *.luar.bet

meduza.studio *.meduza.studio

moolahmax.com *.moolahmax.com

*.com.netsim.pro *.in.netsim.pro *.link.netsim.pro netsim.pro *.netsim.pro *.plus.netsim.pro *.pro.netsim.pro

nhuyt.gdn *.nhuyt.gdn

omvian.co *.omvian.co

positivemindset.training *.positivemindset.training

qqturbo.bet *.qqturbo.bet

rankthai.bet *.rankthai.bet

rei7.bet *.rei7.bet

republicnews.live *.republicnews.live

s8society.lol *.s8society.lol

wurank.com *.wurank.com

ying.bot *.ying.bot

zaya.bot *.zaya.bot

zmp3gz8d82.top *.zmp3gz8d82.top

zzz289.top *.zzz289.top